Z-blogphp Security Vulnerabilities and Issues — Z-blogphp CVE List

Lucene search

ZblogcnZ-blogphp

3 matches found

CVE•added 2018/03/06 9:29 p.m.•50 views

CVE-2018-7737

In Z-BlogPHP 1.5.1.1740, there is Web Site physical path leakage, as demonstrated by admin_footer.php or admin_footer.php. NOTE: the software maintainer disputes that this is a vulnerability

5.3CVSS5.1AI score0.16126EPSS

CVE•added 2018/02/08 4:29 p.m.•41 views

CVE-2018-6846

Z-BlogPHP 1.5.1 allows remote attackers to discover the full path via a direct request to zb_system/function/lib/upload.php.

5.3CVSS5.3AI score0.00205EPSS

CVE•added 2018/10/16 7:29 a.m.•37 views

CVE-2018-18381

Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb_system/function/c_system_admin.php via the Content-Type header during the uploading of image attachments.

5.4CVSS5.2AI score0.00206EPSS